Ensure that all Microsoft Azure Security Center recommendations generated for your Azure cloud account are examined and implemented in order to follow security best practices and meet regulatory compliance and standards. Security Center is a cloud security management service that helps you prevent, detect, and respond to threats with increased visibility and control over the security of your Microsoft Azure resources. The service periodically analyzes the security state of your cloud resources and when it identifies potential security vulnerabilities, it creates recommendations. These recommendations (also known as security tasks) are guided actions that you can take in order to secure the impacted resources.
This rule resolution is part of the Conformity Security & Compliance tool for Azure.
When Microsoft Azure Security Center identifies potential security issues and vulnerabilities, it creates recommendations that guide you through the process of configuring the needed controls to harden and protect your Azure resources.
Note: As example, this conformity rule demonstrates how to analyze and implement a Security Center recommendation that propose designating more than one owner to your Microsoft Azure subscriptions in order to have administrator access redundancy.
Audit
To check for Security Center recommendations within your Azure cloud account, perform the following actions:
Remediation / Resolution
To put the specified Azure Security Center recommendation into action (i.e. assign co-owners to your cloud subscriptions to provide administrator access redundancy at the subscription level), perform the following actions:
References
- Azure Official Documentation
- What is Azure Security Center?
- Security recommendations in Azure Security Center
- Remediate recommendations in Azure Security Center
- Security recommendations - a reference guide
- Monitor identity and access
- Add or remove Azure role assignments using the Azure portal
- Add or change Azure subscription administrators
- Azure Command Line Interface (CLI) Documentation
- az account list
- az security task list
- az security task show
- az role assignment create
Unlock the Remediation Steps
Free 30-day Trial
Automatically audit your configurations with Conformity
and gain access to our cloud security platform.
You are auditing:
Check for Azure Security Center Recommendations
Risk level: